v0.18.0

What's Changed

• Bump up required ruby version to 3.0.0 by @willnet in #369
• Remove legacy Rails version conditionals by @willnet in #370
• Remove form_authenticity_token method by @willnet in #371
• Add metadata to gemspec by @Spone in #372
• Remove unused SimpleCov by @willnet in #374
• Sorcery Unmaintained by @joshbuker in #376
• Update initializer.rb by @5minpause in #375
• Fixed minor issues with test to get all green so that we can continue development. by @Beartech in #377
• Fix CI failures by @willnet in #379
• Add Ruby 3.4 to CI matrix by @willnet in #381
• Remove the dependency on OpenStruct in the test code by @willnet in #382
• Drop support for versions below Ruby 3.2 and Rails 7.1 by @willnet in #383
• Remove Testing Matrix from README by @willnet in #384
• Remove check for rails-controller-testing gem by @willnet in #385
• Limit the files included in the gem to only the necessary ones by @willnet in #386
• Stop the policy of manually updating the Changelog per PR by @willnet in #388
• Update devcontainers to the latest environment by @willnet in #389
• Stop mocking models in controller specs and switch to using ActiveRecord directly by @willnet in #390
• Fix a pending test by @willnet in #387
• Add missing activity_logging attribute to config by @SatoshiHaramura in #314
• Cleanup gemspec formatting by @willnet in #391
• Remove test-unit from development dependency by @willnet in #392
• Change test domains to use "example.com" wherever possible by @willnet in #393
• Update actions/checkout to the latest version by @willnet in #394
• Set up the RuboCop environment by @willnet in #395
• Add an option 'use_redirect_back_or_to_by_rails' to avoid definition conflicts of redirect_back_or_to by @atolix in #373
• Fix a test that expected Rails 8.0 but was using 8.1 instead by @willnet in #398
• Add Rails 8.1 to the CI matrix by @willnet in #399
• Add a dependency on Rails 7.1 or higher by @willnet in #400
• Fix rubocop offenses by @beengine in #397
• Add after_login_lock callback by @y-yagi in #236
• Refactor the part that loads submodules by @willnet in #402
• Fix rubocop offenses [2] by @beengine in #401
• Make redirect_to_before_login_path capable of redirecting to other hosts by @willnet in #406
• Remove an unnecessary to_s method by @willnet in #404
• Remove Rails-version-based branchings that are no longer needed by @willnet in #405
• Fix rubocop RSpec offenses by @beengine in #403
• Add new maintainers and update maintenance status by @joshbuker in #409
• Implement #login! helper by @Spone in #332
• Use the 'forward everything' method signature in the login! method by @willnet in #410
• Release v0.18.0 by @willnet in #412

New Contributors

• @5minpause made their first contribution in #375
• @Beartech made their first contribution in #377
• @SatoshiHaramura made their first contribution in #314
• @atolix made their first contribution in #373
• @beengine made their first contribution in #397
• @y-yagi made their first contribution in #236

Full Changelog: v0.17.0...v0.18.0

v0.17.0

What's Changed

• Remove duplicate method in InstallGenerator by @Spone in #339
• Change CI settings for support Ruby3.0+ Rails6.1+ by @willnet in #357
• Use ActiveRecord.timestamped_migrations by @Spone in #352

New Contributors

• @willnet made their first contribution in #357

Full Changelog: v0.16.5...v0.17.0

v0.16.5

What's Changed

• Loosen oauth version lock per @pboling feedback on issue #317 by @joshbuker in #324
• Raise ArgumentError when calling change_password! with blank password by @Spone in #333
• Update auth_scheme to oauth2 v1 defaults per v2 breaking changes by @joshbuker in #341
• Add .devcontainer support by @joshbuker in #342

New Contributors

• @Spone made their first contribution in #333

Full Changelog: v0.16.4...v0.16.5

v0.16.4

• Adapt to open request protection strategy of rails 7.0 #318
• Update OAuth2 gem to v2 per v1 deprecation #323
• Fixed typo in error message #310

v0.16.3

• Fix provider instantiation for plural provider names (eg. okta) #305

v0.16.2

• Inline core migration index definition #281
• Add missing remember_me attributes to config #180
• Fix MongoID adapter breaking on save #284
• Don't pass token to Slack in query params. Prevents 'invalid_auth' error #287
• Fix valid_password? not using configured values when called alone #293

v0.16.1

• Fix default table name being incorrect in migration generator #274
• Update oauth dependency per CVE-2016-11086

v0.15.1

• Update oauth dependency per CVE-2016-11086

v0.16.0

• Add BattleNet Provider #260
• Fix failing isolated tests #249
• Support LINE login v2.1 #251
• Update generators to better support namespaces #237
• Add support for Rails 6 #238
• Fix ruby 2.7 deprecation warnings #241
• Use set to ensure unique arrays #233

v0.15.0

• Fix brute force vuln due to callbacks no being ran #235
• Revert on_load change due to breaking existing applications #234
• Add forget_me! and force_forget_me! test cases #216
• In generic_send_email, check responds_to #211
• Fix typo #219
• Fix deprecation warnings in Rails 6 #209
• Add ruby 2.6.5 to the travis build #215
• Add discord provider #185
• Remove MySQL database creation call #214
• Use id instead of uid for VK provider #199
• Don't :return_t JSON requests after login #197
• Fix email scope for LinkedIn Provider #191
• Ignore cookies when undefined cookies #187
• Allow for custom providers with multi-word class names. #190